(TLP:CLEAR) Google Zero-Day Threat Report Finds Increasing Attacker Interest In Targeting Security Devices

Summary: Google Threat Intelligence Group released an analysis covering all zero days it is aware of being exploited in 2024. They tracked 75 zero-day vulnerabilities exploited in the wild in 2024, a decrease from the number they identified in 2023 (98 vulnerabilities), but still an increase from 2022 (63 vulnerabilities). They divided the reviewed vulnerabilities into two main categories: end-user platforms and products (e.g., mobile devices, operating systems, and browsers) and enterprise-focused technologies, such as security software and appliances.

Analyst Note: While the report contains multiple takeaways of interest to the water and wastewater sector, two key ones are that attackers are moving from targeting browsers and mobile devices with zero days to enterprise technology and that security and networking products are continuing to see more zero days. Combined, these trends demonstrate that threat actors capable of developing and utilizing zero-day vulnerabilities are becoming more experienced with industry and sector specific considerations and changing their activity accordingly. 

Members are encouraged to read the report in its entirety to gain a better understanding of what points in their organization’s networks and supply chain are most vulnerable to zero-days.

Original Source: https://cloud.google.com/blog/topics/threat-intelligence/2024-zero-day-trends 

Additional Reading: 

• 75 zero-day exploitations spotted by Google, governments increasingly responsible for attacks

Related WaterISAC PIRs: 6, 8, 11, 12